Re: sudo vs. su (was Re: new to list, new to debian, new to linux)
--- On Fri, 22/5/09, Boyd Stephen Smith Jr. <email@example.com> wrote:
> From: Boyd Stephen Smith Jr. <firstname.lastname@example.org>
> Subject: Re: sudo vs. su (was Re: new to list, new to debian, new to linux)
> To: email@example.com
> Date: Friday, 22 May, 2009, 8:14 PM
> In <20090522183807.GA16565@markshroyer.com>,
> Mark Shroyer wrote:
> >On Fri, May 22, 2009 at 06:56:18AM -0700, Thorny
> >> You've just advised an obvious newbie (stated in
> post) on how to make
> >> his system insecure. Giving ALL=(All) ALL rights
> to a normal user is
> >> pretty much the same as running as root and is not
> recommended on a
> >> Debian system.
> It's not equivalent to running as root, since (a) you have
> to prefix
> privileged operations with "sudo", (b) you have to re-auth
> such actions by
> entering your password and (c) your sudo credentials will
> automatically after they are not used.
Errr, yeah whatever.... Until they just do "sudo su" and they're in. ALL=(All) ALL is a bad idea.